Small Businesses Now Bigger Targets In Cyberattacks

Half of all targeted attacks last year hit companies with less than 2,500 employees, and overall, targeted cyberattacks jumped 42 percent in 2012, new Symantec data shows

Its not just the big boys who the bad guys are hacking anymore: Smaller, more vulnerable, and defenseless organizations are now one of the most popular targets, newly published data shows. As targeted cyberattacks increased by 42 percent last year, nearly one-third of all of these attacks were aimed at businesses with less than 250 people.
Smaller businesses presume they are not a target. But we think attackers [are targeting] them because they have weaker security settings and are probably easier to penetrate. Plus they do work with larger organizations ... and attackers can use small companies as a stepping stone to larger ones or as an entry point into getting the information they want, says Vikram Thakur, principal security response manager for Symantec, which today released these latest findings as part of its 2013 Internet Security Threat Report. They need to expect that.
In some cases, the smaller firm may be a supplier of key elements of a larger firms intellectual property, too, which also makes it a juicy target, he says. Attackers also infiltrate smaller, easier-to-hack businesses in hopes that they will ultimately lead to bigger, more lucrative firms, he says. One theory is they stay under the radar in smaller firms in hopes the smaller ones will be acquired by a larger company and then their networks will merge, and theyll have an existing foothold, Thakur says. Another theory is that if they get in smaller companies, they can then use its tunnel to a larger business partners network, he says.
Last year, 50 percent of all targeted attacks hit businesses with less than 2,500 employees, and businesses with less than 250 employees accounted for 31 percent of all targeted attacks and represented the biggest growth sector in these attacks, according to Symantecs report.
[Broader spearphishing campaigns and watering-hole attacks look to compromise and gather intelligence on broader classes of targets. See
Expect Less Targeting From This Years Targeted Attacks
.]
Symantec tallied an average of 116 targeted attacks each day around the world in 2012. Why the jump in targeted attacks? Thakur says that the 42 percent jump may, in part, have to do with the flood of waterholing-type attacks, where attackers infect legitimate websites that users of the targeted organizations would most likely frequent in hopes of infecting them. This can be more efficient than the traditional spearphish in terms of volume of infections: One waterhole attack by the so-called Elderwood Group last year spread malware to 500 different organizations in 24 hours via a human rights organizations website, for instance, Symantec says.
Jaime Blasco, labs manager at Alien Vault Labs, says part of the reason for the increase in targeted attack reports is that organizations are getting better at detecting that they are getting hacked. I think the main reason is that most of the antivirus companies have more visibility about what is and what is not targeted, Blasco says. Im not saying that the number of targeted attacks hasnt increased, but it is true that companies, especially the small and [midsize] ones, are improving their detection capabilities.
The most-hit vertical industry in 2012 was manufacturing, with 34 percent of the targeted attacks, up from 15 percent in 2011. This is the first year that government was not on top of the vertical list, Symantecs Thakur says.
Government and public sector organizations went from 25 percent of the targeted attacks in 2011 to 12 percent last year. Symantec says these shifts may be due to attackers moving down the supply chain in their attacks.
Meanwhile, the number of new vulnerabilities discovered in 2012 increased slightly from 4,989 in 2011 to 5,291 last year -- 425 of which were in mobile operating systems. The number of new zero-day vulnerabilities used in attacks was 14, versus eight in 2011.
Web-based attacks jumped by 30 percent last year, and the number of phishing sites posing as social networking sites exploded by 125 percent as attackers set their sights on social networks. And while mobile malware has grown by 58 percent the past year, according to Symantecs Thakur, 32 percent of all mobile threats now steal information from victims. Data loss is the biggest concern and so is privacy, he says.
The full Symantec report is available
here
for download.
Have a comment on this story? Please click Add Your Comment below. If youd like to contact
Dark Readings
editors directly,
send us a message
.

Last News
▸ ArcSight prepares for future at user conference post HP acquisition. ◂ Discovered: 07/01/2025 Category: security	▸ Samsung Epic 4G: First To Use Media Hub ◂ Discovered: 07/01/2025 Category: security	▸ Many third-party software fails security tests ◂ Discovered: 07/01/2025 Category: security

**Cyber Security Categories**
Google Dorks Database	Exploits Vulnerability	Exploit Shellcodes

CVE List

Tools/Apps

News/Aarticles

Phishing Database

Deepfake Detection

Trends/Statistics & Live Infos

Tags:
Small Businesses Now Bigger Targets In Cyberattacks